Cisco Cisco Web Security Appliance S670 User Guide
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
5-28
Cisco IronPort AsyncOS 7.7 for Web User Guide
Chapter 5 Web Proxy Services
Advanced Proxy Configuration
describes the caching options for the Customized Mode option in the
advancedproxyconfig
CLI command.
Table 5-5
advancedproxyconfig CLI Command—Caching Options
Option
Valid
Values
Values
Default
Value
Value
Web Proxy
Must Restart
Must Restart
Description
Would you like to allow
objects with a heuristic
expiration time to be served
as not-modified
If-Modified-Since hits
from cache?
objects with a heuristic
expiration time to be served
as not-modified
If-Modified-Since hits
from cache?
Yes, No
(Boolean)
Yes
No
0 = favor freshness on IMS to
objects with heuristic expiration
time
objects with heuristic expiration
time
1 = favor bandwidth conservation
Would you like to allow
ETAG mismatch on client
revalidations?
ETAG mismatch on client
revalidations?
Yes, No
(Boolean)
No
No
In some cases, the server might
report different ETags for the same
version of the same file. This can be
seen, for example, with clustered IIS
servers. In these cases, requiring
both a last modified time (LMT)
match and an ETag match on client
revalidations would lead to a lot of
misses, so it should be sufficient just
to match the LMT if it is given.
report different ETags for the same
version of the same file. This can be
seen, for example, with clustered IIS
servers. In these cases, requiring
both a last modified time (LMT)
match and an ETag match on client
revalidations would lead to a lot of
misses, so it should be sufficient just
to match the LMT if it is given.
Note: Setting this to 1 is not
HTTP-compliant.
HTTP-compliant.
Would you like to allow
caching when requests are
authenticated by the origin
server?
caching when requests are
authenticated by the origin
server?
Yes, No
(Boolean)
No
Yes
Allow caching for requests
authenticated by origin server.
authenticated by origin server.
Would you like to allow
caching from servers
whose DNS results do not
match the TCP destination
IP (not trust-worthy and
applicable only in
transparent modes)?
caching from servers
whose DNS results do not
match the TCP destination
IP (not trust-worthy and
applicable only in
transparent modes)?
Yes, No
(Boolean)
No
Yes
Allow caching from servers whose
DNS results do not match the TCP
destination IP.
DNS results do not match the TCP
destination IP.
Enter the Heuristic
maximum age to cache the
document with
Last-Modified Time but no
actual caching value (in
seconds):
maximum age to cache the
document with
Last-Modified Time but no
actual caching value (in
seconds):
Time in
seconds
seconds
86400
No
Heuristic maximum age to cache the
document with LMT but no actual
caching value.
document with LMT but no actual
caching value.
Enter the Heuristic
maximum age to cache the
document without
Last-Modified Time and no
actual caching value (in
seconds):
maximum age to cache the
document without
Last-Modified Time and no
actual caching value (in
seconds):
Time in
seconds
seconds
0
No
Heuristic maximum age to cache the
document without LMT and no
actual caching value.
document without LMT and no
actual caching value.